CVE-2006-2274

Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denialof service (infinite recursion and crash) via a packet that contains two ormore DATA fragments, which causes an skb pointer to refer back to itselfwhen the full message is reassembled, leading to infinite recursion in thesctp_skb_pull function.